Coverity Open Source Defect Scan of X
Alan Coopersmith
Alan.Coopersmith at Sun.COM
Mon Mar 20 09:45:43 PST 2006
Adam Jackson wrote:
> On Monday 06 March 2006 02:09, Ben Chelf wrote:
>> Hello X Developers,
>>
>> I'm the CTO of Coverity, Inc., a company that does static source code
>> analysis to look for defects in code. You may have heard of us or of our
>> technology from its days at Stanford (the "Stanford Checker"). The
>> reason I'm writing is because we have set up a framework internally to
>> continually scan open source projects and provide the results of our
>> analysis back to the developers of those projects. X is one of the 32
>> projects currently scanned at:
>>
>> http://scan.coverity.com
>
> I just want to extend thanks on behalf of Xorg for this donation of resources
> to the project. The Coverity results have found bugs at every level of the
> code, and given the amount of historical baggage and neglect as X carries, we
> certainly need all the help we can get.
Absolutely, as today's security advisory for a bug found only due to the
Coverity reports made abundantly clear. Thanks are most certainly in order!
--
-Alan Coopersmith- alan.coopersmith at sun.com
Sun Microsystems, Inc. - X Window System Engineering
More information about the xorg
mailing list